The srsexec (http://www.sun.com/service/netconnect/) utility is part of the SRS Proxy Core package that is available with Solaris 10. This package is used to monitor the performance of clients running Solaris from a centralized administrative console. This software would be installed on all of the client machines being monitored and is set-uid root by default. Local exploitation of a format string vulnerability in the srsexec binary, optionally included in Sun Microsystems Inc.'s Solaris 10, allows attackers to execute arbitrary code with root privileges.

http://www.securiteam.com/unixfocus/6Q0011FKAM.html